Hardware accelerated virtualization in the ARM Cortex ... - Xen

More documents

Recommendations

Info

Virtualization and TrustZone � TrustZone coexists alongside a VMM Normal World � TrustZone offers a specialised type of Virtualisation � Only 2 „Worlds‟ – not extendable (except through paravirtualization) � Although VMM can also span both worlds � Fourth privilege level is provided by CPU‟s secure monitor mode � Non-symmetrical - The two „Worlds‟ are not equal � Secure world can access both worlds (33bit addressing) 28 App1 (EPG) App2 Guest Operating System1 App1 (Flash) Guest Operating System2 Virtual Machine Monitor (VMM) or Hypervisor App2 HARDWARE (Memory, ARM CPU, I/O Devices) Secure Monitor Secure Apps Secure RTOS Secure World
Spanning Hypervisor Framework 29 ARM Non-Secure Execution Environment ARM Secure Execution Environment User Exception Level (Application Layer) Kernel/Supervisor Exception Level HYP(ervisor) Exception Level Accelerators (eg DSP / GPU) TZ Monitor Exception Level A P P API Open OS & Drivers Driver (OpenMP RT) Open Platform Hypervisor Full Virtualization Virtualized Heterogeneous A P P (KVM) A P P A P P Open OS (Linux) API Resource Driver Virtualized TZ Call Secured Services Domain TrustZone Monitor SoC SoC Management Domains Domain (ST/TEI) Resource API RTOS/uKernel Para-virtualization with platform service API‟s Virtualized TZ Call Platform Resources NoC sMMU Coherence Secured hw timer (tick) This project in ARM is in part funded by ICT-Virtical, a European project supported under the Seventh Framework Programme (7FP) for research and technological development Project website http://www.virtical.eu
Page 1 and 2: Hardware accelerated Virtualization
Page 3 and 4: Large Physical Addressing � Corte
Page 5 and 6: How does ARM do Virtualization �
Page 7 and 8: Memory - the Classic Resource � B
Page 9 and 10: Classic Issue: Interrupts � An In
Page 11 and 12: Virtual Interrupt Controller � Ne
Page 13 and 14: Virtual interrupt example � Exter
Page 15 and 16: Helping with Virtual Devices � AR
Page 17 and 18: Potential of System MMU 17
Page 19 and 20: Base Secure System � Minimal Trus
Page 21 and 22: Propagating System Security NS : No
Page 23 and 24: ig.LITTLE Multi-Processing � “B
Page 25 and 26: ig.LITTLE Processing � Right size
Page 27: Forms of big.LITTLE � big.LITTLE

Hardware accelerated virtualization in the ARM Cortex ... - Xen

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?